Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252141	5	警告	ProFTPD Project	-	ProFTPD の mod_sftp モジュールにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1137	2011-04-27 11:59	2011-01-24	Show	GitHub Exploit DB Packet Storm

252142	6.8	警告	IBM	-	IBM AIX の LDAP ログイン機能における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2011-1561	2011-04-27 11:57	2011-03-31	Show	GitHub Exploit DB Packet Storm

252143	4.4	警告	ヒューレット・パッカード	-	HP HP-UX の OS-Core.CORE2-KRN ファイルセットにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-0891	2011-04-27 11:56	2011-03-23	Show	GitHub Exploit DB Packet Storm

252144	1.9	注意	Gentoo Linux レッドハット	-	logrotate の logrotate.c 内にある writeState 関数におけるサービス運用妨害 (ローテーションの停止) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1155	2011-04-27 11:41	2011-03-30	Show	GitHub Exploit DB Packet Storm

252145	6.9	警告	Gentoo Linux レッドハット	-	logrotate の shred_file 関数における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-1154	2011-04-27 11:40	2011-03-30	Show	GitHub Exploit DB Packet Storm

252146	1.9	注意	Gentoo Linux レッドハット	-	logrotate の createOutputFile 関数におけるログデータを閲覧される脆弱性	CWE-362 競合状態	CVE-2011-1098	2011-04-27 11:39	2011-03-30	Show	GitHub Exploit DB Packet Storm

252147	6.9	警告	サイバートラスト株式会社 libvirt.org レッドハット	-	複数のレッドハット製品などで利用される libvirt の libvirt.c における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1146	2011-04-27 11:34	2011-02-17	Show	GitHub Exploit DB Packet Storm

252148	5.1	警告	rsync.samba.org レッドハット	-	rsync における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2011-1097	2011-04-27 11:32	2011-03-26	Show	GitHub Exploit DB Packet Storm

252149	6.9	警告	GNOME Project レッドハット	-	GNOME Display Manager におけるファイルの所有権を変更される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-0727	2011-04-27 11:31	2011-03-28	Show	GitHub Exploit DB Packet Storm

252150	7.5	危険	レッドハット	-	Plone における管理者のアクセス権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2011-0720	2011-04-27 11:30	2011-02-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
3791	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Glowlogix WP Frontend Profile wp-front-end-profile allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Frontend Profil…	CWE-862 Missing Authorization	CVE-2026-39688	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3792	-		-	-	Missing Authorization vulnerability in eshipper eShipper Commerce eshipper-commerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects eShipper Commerce: from …	CWE-862 Missing Authorization	CVE-2026-39689	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3793	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in Paul Bearne Author Avatars List/Block author-avatars allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Author Avatars L…	CWE-862 Missing Authorization	CVE-2026-39690	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3794	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in AdAstraCrypto Cryptocurrency Donation Box – Bitcoin & Crypto Donations cryptocurrency-donation-box allows Exploiting Incorrectly Configured Access Control Secur…	CWE-862 Missing Authorization	CVE-2026-39691	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3795	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in tagDiv tagDiv Composer td-composer allows Stored XSS.This issue affects tagDiv Composer: from n/a…	CWE-79 Cross-site Scripting	CVE-2026-39692	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3796	5.9	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in fesomia FSM Custom Featured Image Caption fsm-custom-featured-image-caption allows DOM-Based XSS.…	CWE-79 Cross-site Scripting	CVE-2026-39693	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3797	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in NSquared Simply Schedule Appointments simply-schedule-appointments allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Si…	CWE-862 Missing Authorization	CVE-2026-39694	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3798	5.4	MEDIUM Network	-	-	Server-Side Request Forgery (SSRF) vulnerability in podigee Podigee podigee allows Server Side Request Forgery.This issue affects Podigee: from n/a through <= 1.4.0.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2026-39695	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3799	6.5	MEDIUM Network	-	-	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elfsight Elfsight WhatsApp Chat CC elfsight-whatsapp-chat allows DOM-Based XSS.This issue affects…	CWE-79 Cross-site Scripting	CVE-2026-39696	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm

3800	5.3	MEDIUM Network	-	-	Missing Authorization vulnerability in HBSS Technologies MAIO – The new AI GEO / SEO tool maio-the-new-ai-geo-seo-tool allows Exploiting Incorrectly Configured Access Control Security Levels.Th…	CWE-862 Missing Authorization	CVE-2026-39697	2026-04-25 03:05	2026-04-8	Show	GitHub Exploit DB Packet Storm